Last updated, August 24th, 2023.

1. Data Protection

General observations

The notifications that follow provide you with a quick summary of what happens to your personal data when you visit this website. Personal data is any information that may be used to identify you personally. For further information on data protection, please see our privacy policy, which is posted below this paragraph.

Data collection

Who is in charge of collecting data on this website?

The website operator is in charge of data processing on this site. You may find their contact information in the website’s imprint.

How do we obtain your information?

On the one hand, your data is gathered by you supplying it to us. On the other hand, this may be data from a contact form.

Other data is automatically gathered by the servers (server log files) of our external host provider when you visit the website. This is mostly technical information (e.g., Internet browser, operating system, or time of page view). This information is automatically gathered when you visit this page.

What will we do with this information?

A portion of the data is gathered to guarantee that the website runs well. Other data sources may be utilized to examine your user activity.

What are your data protection rights?

You have the right to free information about the origin, receiver, and purpose of your stored personal data at any time. You also have the right to request that this data be corrected or deleted. Assume you have also granted your permission for data processing. In such a situation, you have the option to rescind your permission at any moment in the future. You also have the right to request that the processing of your personal data be restricted in certain instances. You also have the right to file a complaint with the appropriate supervisory authority. Furthermore, you can contact us at any time at the address listed in the imprint if you have any questions about data protection.

2. Hosting and Content Delivery Networks (CDN)

External hosting

This website is hosted by a third-party technical service provider. The personal data gathered on this website is saved on the host’s servers. This may comprise IP addresses, contact requests, meta and communication data, website accesses, and other data created by a website.

The host is used to fulfill the contract with our new and present clients as well as to ensure the safe, rapid, and effective supply of our online product by a competent provider.

Our host will process your data only to the extent required to fulfill its service responsibilities and will adhere to our instructions regarding this data.

Conclusion of an order processing contract

We have executed an order processing contract with our host to ensure data protection compliance.

3. General Notes and Mandatory Information

Privacy

The owner of these sites takes the security of your personal information extremely seriously. We treat your personal data with confidentiality and in accordance with data protection laws and this privacy statement. Various types of personal data are collected when you use this website. Personal data is information that may be used to identify you personally. The current Privacy Policy describes what information we gather and how we utilize it. It also discusses why and how this is done. We point out that data transmission through the Internet (for example, e-mail communication) may have security flaws. As a result, comprehensive data security against unauthorized access is not achievable.

Notes on the responsible body

The responsible party for data processing on this website is:

Certus Consulting DWC-LLC

Dubai South, 3rd Floor, A3.

The controller is the natural or legal person who, alone or jointly with others, determines the purposes and means of processing personal data (e.g., names, e-mail addresses, etc.).

Revocation of your permission for data processing

Many data processing actions are only feasible with your express agreement. You can cancel previously granted consent at any time. The legality of the data processing prior to the revocation is unaffected by the revocation.

Right to object to data collection and direct marketing in exceptional circumstances (Article 21 GDPR)

IF THE PROCESSING OF YOUR PERSONAL DATA IS BASED ON ART. 6 PARA. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME ON GROUNDS RELATING TO YOUR PARTICULAR SITUATION; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. THIS DATA PROTECTION DECLARATION CONTAINS THE RESPECTIVE LEGAL BASE ON WHICH PROCESSING IS BASED. IF YOU OBJECT, WE WILL STOP PROCESSING YOUR PERSONAL DATA UNLESS WE CAN PROVE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING THAT SUPERSEDE YOUR INTERESTS, RIGHTS, AND FREEDOMS, OR THE PROCESSING IS FOR THE ESTABLISHMENT, EXERCISE, OR DEFENSE OF LEGAL CLAIMS (OBJECTION UNDER ART. 21 PARA. 1 GDPR).

ASSUME YOUR PERSONAL INFORMATION IS PROCESSED FOR DIRECT MARKETING. IN THAT CASE, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH MARKETING AT ANY TIME; THIS ALSO APPLIES TO PROFILING AS IT IS ASSOCIATED WITH SUCH DIRECT MARKETING. IF YOU OBJECT, YOUR PERSONAL DATA WILL NO LONGER BE USED FOR DIRECT MARKETING (in accordance with Art. 21 PARA. 2 GDPR).

Right to Appeal to the Appropriate Supervisory Authority

In the event of a GDPR violation, data subjects have the right to appeal to a supervisory authority, particularly in the Member State of their habitual home, place of employment, or the alleged breach. The right to appeal is independent of any other administrative or judicial remedies.

Right to Data Portability

You have the right to have data that we automatically process based on your permission or in the performance of a contract handed over to you or a third party in a standard, machine-readable format. However, suppose you request that the data be sent directly to another controller. In that situation, this will be done solely to the extent that it is technically practicable.

TLS or SSL encryption

For security purposes and to secure the transmission of confidential material, such as orders or requests that you make to us as the site operator, this site employs SSL or TLS encryption. The browser address bar changes from “http://” to “https://,” and the lock icon in your browser bar indicatesan encrypted connection.

Third parties cannot read the data you send to us if SSL or TLS encryption is enabled.

Correction, deletion, and information

You have the right to free information about your stored personal data, its origin and receiver, and the purpose of data processing at any time, within the context of the applicable legal regulations, and, if appropriate, the right to modify or delete this data. You can contact us at any time with these and other inquiries about personal data at the address listed in the imprint.

Right to processing restriction

You have the right to request that the processing of your personal data be restricted. You can contact us at any time at the address listed in the imprint for this reason. The right to limit processing occurs in the following circumstances:

• We normally require time to verify the correctness of your personal data if you dispute its accuracy. As a result, you have the right to request that your personal data be restricted for the period of the evaluation.
• Assume that the processing of your personal data occurred or is occurring illegally. In that scenario, you may seek data processing limitations rather than erasure.
• Assume we no longer require your personal information, but you require it to exercise, defend, or enforce legal rights. In that circumstance, you have the option of requesting that your personal data be restricted rather than deleted.
• If you have registered an objection, you must balance your and my interests, according to Art. 21 (1) GDPR. As a result, as long as it has not been decided whose interests prevail, you have the right to request that the processing of your personal data be restricted.
• Assume you have prohibited the processing of your personal data. In that case, apart from storage, this data may only be processed with your consent, for the assertion, exercise, or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of significant public interest of the European Union or a Member State.

4. Data Collection

Server log files

The pages’ provider automatically collects and stores information in so-called server log files, which your browser automatically transmits. These are:

• Page, Example: “/career/jobs/[jobName]”
• URL, example: “/about-us”
• Network Speed, Example: “4g (or slow-2g, 2g, 3g)”
• Browser, Example: “Chrome 86 (Blink)”
• Device Type, Example: “Mobile (or Desktop/Tablet)”
• Device OS, example: “Android 10”
• Country (ISO 3166-1 alpha-2), example: “US”
• Web Vital, Example: “FCP 1.0s”
• Server-Received Event Time: Example: “2020-10-29 09:06:30”

This data is not merged with other data sources.

The collection of this data is based on art. 6 of GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of its website; for this purpose, the server log files must be recorded.

Analytics and Web Vitals

Only the server log files, which your browser automatically transfers, record data. Instead of cookies, as many analytics tools do, you are identifiable by a hash generated from the incoming request (server log files). Using a hash-created hash gives you a more private experience and prevents you from being traced across multiple days or websites.

The hash produced is only valid for one day before being automatically reset.

When you visit our website for the first time, it is recorded as a page view. The native Browser API is used to monitor subsequent page visits.

Request through e-mail or phone

Assume you contact us by email or phone. In such an event, your request, along with any resultant personal data (name, request), will be saved and processed by us in order to process your request. We will not disclose this information without your permission. This data is processed in accordance with Art. 6 (1) lit. B GDPR if your request is connected to the fulfillment of a contract or is required for the implementation of pre-contractual procedures. In all other situations, the processing is based on my legitimate interest in successfully addressing the requests directed to us (Art. 6 para. 1 lit. F GDPR) or, if asked, with your permission (Art. 6 para. 1 lit. A GDPR). The data you submit to us via contact requests will be kept with us until you ask us to delete it, renounce your consent to retain it, or the purpose for holding the data no longer applies (for example, once processing your request is done). Statutory requirements, including statutory retention periods, are unchanged.